Lucene search
K

8560 matches found

Cvelist
Cvelist
added 2025/10/01 8:7 p.m.9 views

CVE-2025-59149 Suricata: Stack buffer overflow in rule parser when processing long keywords with transforms

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In version 8.0.0, rules using keyword ldap.responses.attributetype which is long with transforms can lead to a stack buffer overflow during Suricata startup or duri...

6.2CVSS0.00189EPSS
Exploits0References4
CVE
CVE
added 2025/10/01 8:7 p.m.21 views

CVE-2025-59149

Suricata (Open Information Security Foundation) 8.0.0 is affected by a vulnerability in rules that use ldap.responses.attribute_type with transforms, causing a stack buffer overflow during startup or rule reload. The issue is fixed in version 8.0.1. Workarounds include disabling rules that use ld...

6.2CVSS6.8AI score0.00189EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/10/01 8:7 p.m.6 views

CVE-2025-59149 Suricata: Stack buffer overflow in rule parser when processing long keywords with transforms

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In version 8.0.0, rules using keyword ldap.responses.attributetype which is long with transforms can lead to a stack buffer overflow during Suricata startup or duri...

6.2CVSS6.8AI score0.00189EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2025/10/01 8:7 p.m.6 views

CVE-2025-59149

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In version 8.0.0, rules using keyword ldap.responses.attributetype which is long with transforms can lead to a stack buffer overflow during Suricata startup or duri...

6.2CVSS7.2AI score0.00189EPSS
Exploits0
OSV
OSV
added 2025/10/01 2:43 p.m.2 views

BIT-JUPYTERLAB-2025-59842 JupyterLab LaTeX typesetter links did not enforce `noopener` attribute

jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architecture. Prior to version 4.4.8, links generated with LaTeX typesetters in Markdown files and Markdown cells in JupyterLab and Jupyter Notebook did not include the noopener...

4.3CVSS6.8AI score0.0021EPSS
Exploits0References3
NVD
NVD
added 2025/10/01 12:15 p.m.8 views

CVE-2023-53486

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Enhance the attribute size check This combines the overflow and boundary check so that all attribute size will be properly examined while enumerating them. 169.181521 BUG: KASAN: slab-out-of-bounds in...

7.1CVSS0.00149EPSS
Exploits0References4
OSV
OSV
added 2025/10/01 12:15 p.m.2 views

UBUNTU-CVE-2023-53486

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Enhance the attribute size check This combines the overflow and boundary check so that all attribute size will be properly examined while enumerating them. 169.181521 BUG: KASAN: slab-out-of-bounds in...

7.1CVSS5.8AI score0.00149EPSS
Exploits0References7
OSV
OSV
added 2025/10/01 12:15 p.m.4 views

UBUNTU-CVE-2023-53516

In the Linux kernel, the following vulnerability has been resolved: macvlan: add forgotten nlapolicy for IFLAMACVLANBCCUTOFF The previous commit 954d1fa1ac93 "macvlan: Add netlink attribute for broadcast cutoff" added one additional attribute named IFLAMACVLANBCCUTOFF to allow broadcast cutfoff...

7.8CVSS5.7AI score0.00133EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/10/01 11:46 a.m.6 views

CVE-2023-53516 macvlan: add forgotten nla_policy for IFLA_MACVLAN_BC_CUTOFF

In the Linux kernel, the following vulnerability has been resolved: macvlan: add forgotten nlapolicy for IFLAMACVLANBCCUTOFF The previous commit 954d1fa1ac93 "macvlan: Add netlink attribute for broadcast cutoff" added one additional attribute named IFLAMACVLANBCCUTOFF to allow broadcast cutfoff...

0.00133EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/01 11:45 a.m.8 views

CVE-2023-53491 start_kernel: Add __no_stack_protector function attribute

In the Linux kernel, the following vulnerability has been resolved: startkernel: Add nostackprotector function attribute Back during the discussion of commit a9a3ed1eff36 "x86: Fix early boot crash on gcc-10, third try" we discussed the need for a function attribute to control the omission of sta...

0.00133EPSS
Exploits0References2
CVE
CVE
added 2025/10/01 11:45 a.m.23 views

CVE-2023-53491

CVE-2023-53491 affects the Linux kernel: start_kernel now uses the __no_stack_protector attribute to control per-function stack-protector omission. The issue arises because boot_init_stack_canary must be compiled with stack protector unless -fno-stack-protector is used; otherwise the canary in th...

5.5CVSS6.1AI score0.00133EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/10/01 11:45 a.m.6 views

CVE-2023-53491 start_kernel: Add __no_stack_protector function attribute

In the Linux kernel, the following vulnerability has been resolved: startkernel: Add nostackprotector function attribute Back during the discussion of commit a9a3ed1eff36 "x86: Fix early boot crash on gcc-10, third try" we discussed the need for a function attribute to control the omission of sta...

5.5CVSS6.1AI score0.00133EPSS
Exploits0References5
CVE
CVE
added 2025/10/01 11:42 a.m.18 views

CVE-2023-53486

CVE-2023-53486 affects the Linux kernel ntfs3 implementation. The fixed issue is a combined overflow/boundary check in attribute size validation during NTFS attribute enumeration, which could lead to slab-out-of-bounds access (KASAN) when mounting or reading NTFS volumes. The description and conn...

7.1CVSS6AI score0.00149EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2025/10/01 11:42 a.m.12 views

CVE-2023-53486 fs/ntfs3: Enhance the attribute size check

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Enhance the attribute size check This combines the overflow and boundary check so that all attribute size will be properly examined while enumerating them. 169.181521 BUG: KASAN: slab-out-of-bounds in...

0.00149EPSS
Exploits0References4
OSV
OSV
added 2025/10/01 11:42 a.m.3 views

CVE-2023-53486 fs/ntfs3: Enhance the attribute size check

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Enhance the attribute size check This combines the overflow and boundary check so that all attribute size will be properly examined while enumerating them. 169.181521 BUG: KASAN: slab-out-of-bounds in...

7.1CVSS6.4AI score0.00149EPSS
Exploits0References7
NVD
NVD
added 2025/10/01 6:15 a.m.7 views

CVE-2025-9512

The Schema & Structured Data for WP & AMP WordPress plugin before 1.50 does not properly handles HTML tag attribute modifications, making it possible for unauthenticated attackers to conduct Stored XSS attacks via post comments...

6.1CVSS0.00197EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/01 12:0 a.m.5 views

Suricata 安全漏洞

Suricata is a network IDS, IPS and NSM engine from the Open Information Security Foundation. A security vulnerability exists in Suricata version 8.0.0 that stems from the use of the ldap.responses.attributetype keyword and transformations that could lead to a stack buffer overflow...

6.2CVSS6.6AI score0.00189EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/01 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unvalidated nlattr length that could lead to an out-of-bounds read...

5.9AI score0.00149EPSS
Exploits0References10
CNNVD
CNNVD
added 2025/10/01 12:0 a.m.19 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from insufficient attribute size checking, which could lead to out-of-bounds reads...

6.1AI score0.00149EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/10/01 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a missing nlapolicy description for the IFLAMACVLANBCCUTOFF attribute, which could lead to a heap...

5.9AI score0.00133EPSS
Exploits0References3
Rows per page
Query Builder